Hacker News new | past | comments | ask | show | jobs | submit login

Except that that is almost never the way you would go about logging someone out. Which is precisely the point.



> Except that that is almost never the way you would go about logging someone out.

Its the way I would go about logging somebody out. Why wouldn't you?


This is exactly how I log people out,

POST /_session GET /_session DELETE /_session

(CouchDB API)


That's exactly how I do it. Why wouldn't the session be treated as a resource?




Join us for AI Startup School this June 16-17 in San Francisco!

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: